$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: tf8Xe6qWbpbpqNuHm1lqulJv6NDCG7QqEsS0AiTLbmE= Subject key identifier: 5B:E1:71:BE:93:87:B2:1E:3A:4D:FB:CB:11:E4:7D:FF:23:86:F2:B9 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 024F Signing time: Fri 17 Apr 2026 02:07:25 +0000 Manifest this update: Fri 17 Apr 2026 02:07:24 +0000 Manifest next update: Fri 24 Apr 2026 02:07:24 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: 6HIrCQbTuCoXIpgUjjFkgHHG8rkWwaYVTFySPLeVZhc=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: BbJgy4+r5xqumD47JYCsm8jlMt7XgJ8HLQRHYGqlUlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Apr 17 02:07:24 2026 GMT Not After : Apr 24 02:07:24 2026 GMT Subject: CN=69e195dd-9d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:51:41:48:89:3a:51:8f:e0:6e:62:ea:68:11: 56:0e:60:77:93:35:41:08:94:f3:c6:b0:d5:b2:0d: 6b:c1:26:af:9c:39:76:0c:4d:57:35:3e:25:33:43: 95:97:ce:c7:19:73:ba:81:4c:32:55:53:16:65:1c: 2b:1c:85:b6:74:b8:da:f4:a2:0a:5d:11:fd:11:a3: 6d:54:6b:17:01:52:c2:a9:ac:8d:29:18:11:96:84: 37:ab:c1:6f:d3:7f:b8:de:5a:f0:d8:8e:d2:b1:03: 0b:da:3e:4e:3e:d6:10:6f:05:e3:a5:7d:3c:e9:5a: 4b:d4:83:a5:19:23:a8:a0:c8:e5:1e:6e:86:cf:e6: 83:62:88:6f:c4:ac:ab:48:1d:15:72:77:e8:ad:f8: f9:d4:23:b6:3f:00:61:56:22:26:52:2b:55:c0:9e: 55:a9:00:90:74:2b:f6:ba:d0:f6:f4:6f:7f:68:8c: 4a:d4:22:c2:47:b4:c6:67:ba:98:7d:93:2e:13:51: 02:ea:07:04:ff:04:5f:e1:31:3b:d4:cd:19:dd:bd: a3:e2:3a:59:4a:37:d0:1f:5e:1f:d7:43:31:f3:20: e4:11:43:90:52:aa:24:53:be:3d:4a:2a:98:2d:90: 5c:d2:98:e9:f5:ec:90:f4:d7:28:be:15:35:9b:c3: 79:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E1:71:BE:93:87:B2:1E:3A:4D:FB:CB:11:E4:7D:FF:23:86:F2:B9 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:3a:cd:86:af:50:44:6d:c5:74:53:01:2f:28:36:3f:fb:b6: b1:9f:7a:36:79:0f:3b:89:24:9c:5b:23:b2:62:df:29:d4:b5: 8d:a4:1d:5e:a9:40:c2:89:d2:0b:90:50:6d:c7:f8:50:10:05: 3b:d2:e6:50:31:ca:c5:8d:6a:3e:3f:b7:a6:da:a0:91:9a:30: b4:f7:e0:2a:20:1f:38:73:97:b1:d4:5d:a1:e4:84:7f:c7:f9: 7d:99:08:76:49:bd:95:63:86:ce:f5:0f:86:20:75:5d:10:7b: 94:60:30:98:ba:42:f3:c1:e8:59:a1:bc:66:35:22:72:fd:70: 2c:9c:9c:03:cc:65:8f:88:9c:9b:7c:78:4f:78:23:34:14:8b: 5e:92:c3:41:d9:de:a9:e3:bf:c8:fa:ce:ee:28:6d:2a:90:61: 96:63:a5:18:06:eb:fd:43:83:c1:08:fb:d2:fb:a8:d1:4c:6a: 0f:3b:52:e5:4f:68:2c:bf:fa:7e:00:b1:8f:58:bc:2c:fc:b7: 84:2c:7b:88:ef:42:66:cb:3c:9d:2c:f2:ea:0e:99:b3:a9:0e: 30:dd:e9:2e:e2:d6:fe:0f:22:16:bd:8f:39:c2:1d:b5:94:5f: 02:09:cb:8b:c0:ed:3c:11:60:c5:63:de:c5:4a:ee:07:39:94: 15:0c:06:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjYwNDE3MDIwNzI0WhcNMjYwNDI0MDIwNzI0WjAYMRYwFAYD VQQDEw02OWUxOTVkZC05ZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplFBSIk6UY/gbmLqaBFWDmB3kzVBCJTzxrDVsg1rwSavnDl2DE1XNT4lM0OV l87HGXO6gUwyVVMWZRwrHIW2dLja9KIKXRH9EaNtVGsXAVLCqayNKRgRloQ3q8Fv 03+43lrw2I7SsQML2j5OPtYQbwXjpX086VpL1IOlGSOooMjlHm6Gz+aDYohvxKyr SB0Vcnforfj51CO2PwBhViImUitVwJ5VqQCQdCv2utD29G9/aIxK1CLCR7TGZ7qY fZMuE1EC6gcE/wRf4TE71M0Z3b2j4jpZSjfQH14f10Mx8yDkEUOQUqokU749SiqY LZBc0pjp9eyQ9NcovhU1m8N55QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFvhcb6T h7IeOk37yxHkff8jhvK5MB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiDrNhq9QRG3FdFMBLyg2P/u2sZ96NnkPO4kknFsjsmLfKdS1jaQdXqlAwonS C5BQbcf4UBAFO9LmUDHKxY1qPj+3ptqgkZowtPfgKiAfOHOXsdRdoeSEf8f5fZkI dkm9lWOGzvUPhiB1XRB7lGAwmLpC88HoWaG8ZjUicv1wLJycA8xlj4icm3x4T3gj NBSLXpLDQdneqeO/yPrO7ihtKpBhlmOlGAbr/UODwQj70vuo0UxqDztS5U9oLL/6 fgCxj1i8LPy3hCx7iO9CZss8nSzy6g6Zs6kOMN3pLuLW/g8iFr2POcIdtZRfAgnL i8DtPBFgxWPexUruBzmUFQwGXA== -----END CERTIFICATE-----Generated at Fri Apr 17 14:50:21 2026 by rpki-client